Daily Vulnerability Trends: Sun Aug 14 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2021-0920In unix_scm_to_skb of af_unix.c, there is a possible use after free bug...
Vulnerabilities
Gas Agency Management System upload file upload |
NAME Gas Agency Management System upload file upload Platforms Affected:Sourcecodester Gas Agency Management System 2022Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION...
Siemens SCALANCE devices code execution | CVE-2022-36323
NAME Siemens SCALANCE devices code execution Platforms Affected:Siemens SCALANCE M-800 Siemens SCALANCE XB-200 Siemens SCALANCE XP-200 Siemens SCALANCE XR-300WG Siemens...
Keysight Sensor Management Server (SMS) directory traversal | CVE-2022-38129
NAME Keysight Sensor Management Server (SMS) directory traversal Platforms Affected:Keysight Sensor Management Server (SMS) 2.4.0Risk Level:9.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Keysight Sensor...
Zoom Client for Meetings for MacOS privilege escalation | CVE-2022-28751
NAME Zoom Client for Meetings for MacOS privilege escalation Platforms Affected:Zoom Client for Meetings for MacOS 5.11Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...
Adobe Premiere Elements privilege escalation | CVE-2022-34235
NAME Adobe Premiere Elements privilege escalation Platforms Affected:Adobe Premiere Elements 2022 20.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Adobe Premiere Elements could allow...
Zoom On-Premise Meeting Connector MMR security bypass | CVE-2022-28754
NAME Zoom On-Premise Meeting Connector MMR security bypass Platforms Affected:Zoom On-Premise Meeting Connector MMR 4.8Risk Level:8.2Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Zoom On-Premise...
Keysight Sensor Management Server (SMS) code execution | CVE-2022-38130
NAME Keysight Sensor Management Server (SMS) code execution Platforms Affected:Keysight Sensor Management Server (SMS) 2.4.0Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Keysight Sensor...
Gumstix Overo SBC on the VSKS board security bypass | CVE-2022-38161
NAME Gumstix Overo SBC on the VSKS board security bypass Platforms Affected:Gumstix Overo SBCRisk Level:8.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Gumstix Overo SBC...
Daily Vulnerability Trends: Fri Aug 12 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-31675VMware vRealize Operations contains an authentication bypass vulnerability. An unauthenticated malicious actor...
Emerson ControlWave code execution | CVE-2022-30262
NAME Emerson ControlWave code execution Platforms Affected:Emerson ControlWaveRisk Level:9.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Emerson ControlWave could allow a remote attacker to execute...
SAP BusinessObjects Business Intelligence Platform information disclosure | CVE-2022-32245
NAME SAP BusinessObjects Business Intelligence Platform information disclosure Platforms Affected:SAP BusinessObjects Business Intelligence Platform 420 SAP BusinessObjects Business Intelligence Platform...
Palo Alto Networks PAN-OS denial of service | CVE-2022-0028
NAME Palo Alto Networks PAN-OS denial of service Platforms Affected:Palo Alto Networks PAN-OS 9.0.0 Palo Alto Networks PAN-OS 8.1 Palo...
Intel Open AMT Cloud Toolkit software privilege escalation | CVE-2022-25899
NAME Intel Open AMT Cloud Toolkit software privilege escalation Platforms Affected:Intel Open AMT Cloud Toolkit softwareRisk Level:9.9Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Intel...
Zimbra privilege escalation | CVE-2022-37393
NAME Zimbra privilege escalation Platforms Affected:Zimbra Zimbra 8.8.15Risk Level:7.8Exploitability:FunctionalConsequences:Gain Privileges DESCRIPTION Zimbra could allow a local authenticated attacker to gain...
Emerson OpenBSI information disclosure | CVE-2022-29959
NAME Emerson OpenBSI information disclosure Platforms Affected:Emerson OpenBSI 5.9 SP3Risk Level:9.6Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Emerson OpenBSI could allow a remote attacker...
Daily Vulnerability Trends: Thu Aug 11 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-2585 No description provided CVE-2022-33916 No description provided CVE-2022-31101prestashop/blockwishlist is a prestashop...
Intel Data Center Manager privilege escalation | CVE-2022-21225
NAME Intel Data Center Manager privilege escalation Platforms Affected:Intel Data Center Manager 4.0Risk Level:9Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Intel Data Center Manager...
Microsoft Windows Secure Socket Tunneling Protocol (SSTP) code execution | CVE-2022-35766
NAME Microsoft Windows Secure Socket Tunneling Protocol (SSTP) code execution Platforms Affected:Microsoft Windows 10 x32 Microsoft Windows 10 x64 Microsoft...
Adobe Premiere Elements privilege escalation | CVE-2022-34698
NAME Adobe Premiere Elements privilege escalation Platforms Affected:Adobe Premiere Elements 2022 20.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Adobe Premiere Elements could allow...
Microsoft Exchange Server privilege escalation | CVE-2022-24477
NAME Microsoft Exchange Server privilege escalation Platforms Affected:Microsoft Exchange Server 2013 CU23 Microsoft Exchange Server 2016 CU22 Microsoft Exchange Server...
Microsoft Visual Studio code execution | CVE-2022-35826
NAME Microsoft Visual Studio code execution Platforms Affected:Microsoft Visual Studio 2015 Update 3 Microsoft Visual Studio 2013 Update 5 Microsoft...
Intel NUC Laptop Kit privilege escalation | CVE-2022-28858
NAME Intel NUC Laptop Kit privilege escalation Platforms Affected:Intel NUC M15 Laptop Kit LAPBC510 Intel NUC M15 Laptop Kit LAPBC710Risk...
Adobe Commerce and Magento Open Source code execution | CVE-2022-34253
NAME Adobe Commerce and Magento Open Source code execution Platforms Affected:Adobe Commerce 2.4.3-p2 Adobe Commerce 2.4.3-p3 Adobe Commerce 2.4.4 Adobe...
